| VID |
17004 |
| Severity |
20 |
| Port |
111 |
| Protocol |
TCP,UDP |
| Class |
RPC |
| Detailed Description |
The RPC keyserv service is running. The keyserv service stores the private encryption keys of all logged in users for use with network services with integrated security, like secure NFS and NIS+. The keyserv service registers with the RPC portmapper as program 100029.
* References:
http://www.iss.net/security_center/static/275.php |
| Recommendation |
Disable the 'keyserv' rpc service if your network is not implementing any protocol that requires or uses this type of integrated security.
Solaris 10, Solaris 11, Enterprise Linux 6.4, CentOS 6.4, Fedora 19:
1. you become a root, and then stop the service like the following:
# rpcinfo -d [program num] [version num]
2. comment its entry by putting a # at the beginning of the line with 'keyserv' in /etc/rpc
3. # pkill -HUP (x)inetd |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
